Secure exchange of cyber threat intelligence using TAXII and distributed ledger technologies - Application for electrical power and energy system
Loading...
Access rights
openAccess
acceptedVersion
URL
Journal Title
Journal ISSN
Volume Title
A4 Artikkeli konferenssijulkaisussa
This publication is imported from Aalto University research portal.
View publication in the Research portal (opens in new window)
View/Open full text file from the Research portal (opens in new window)
Other link related to publication (opens in new window)
View publication in the Research portal (opens in new window)
View/Open full text file from the Research portal (opens in new window)
Other link related to publication (opens in new window)
Date
2021-08-17
Major/Subject
Mcode
Degree programme
Language
en
Pages
8
Series
Proceedings of International Conference on Availability, Reliability and Security, ARES 2021
Abstract
The energy sector has been, in recent years, the target of sophisticated cyberattacks. Although the importance of collaborative cyber-security consciousness, expressed as extensive cyber threat intelligence sharing, is undoubted, the standardization of the means of exchanging cyber threat information efficiently and securely has been inadequately addressed and is mostly expressed by the emergence of the Trusted Automated eXchange of Indicator Information (TAXIITM) protocol which faces major deficiencies when it comes to data integrity assurance and suitability for event-driven architectures. This paper presents a novel approach enabling secure and real-time exchange of cyber threat information, by extending the technological capacity of the TAXII framework and addressing its deficiencies through the integration of Distributed Ledger Technologies (DLT) and a generalized publish-subscribe middleware. The applicability of the proposed solution has been validated in several use cases addressing the real needs of Electrical Power and Energy Systems.Description
Funding Information: This work was partially funded by the H2020 PHOENIX project, contract no. 832989, within the H2020 Framework Program of the European Commission. Publisher Copyright: © 2021 ACM. | openaire: EC/H2020/832989/EU//PHOENIX
Keywords
Cyber Threat Intelligence, Distributed Ledger Technology, Energy Sector, Publish-Subscribe Middleware, TAXII Framework
Other note
Citation
Pahlevan, M, Voulkidis, A & Velivassaki, T-H 2021, Secure exchange of cyber threat intelligence using TAXII and distributed ledger technologies - Application for electrical power and energy system . in Proceedings of International Conference on Availability, Reliability and Security, ARES 2021 ., 122, ACM, International Conference on Availability, Reliability and Security, Vienna, Austria, 17/08/2021 . https://doi.org/10.1145/3465481.3470476